indexo.dev

rototilt.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 5601 ms crawled 2026-05-16

SE · 195.250.61.160 · AS29518 Bredband2 AB

Reputation 100/100

Classifying

HTML metadata

Title
Rototilt Excavator Attachments for Sale | Rototilt
Description
Explore the range of Rototilt® excavator attachments for sale. Rototilt® carries a range of high quality machine couplers, tiltrotators, and tools.
Language
en
Canonical
https://www.rototilt.com/en/
Translations
  • da-dk
  • de-de
  • en
  • en-au
  • en-gb
  • en-nz
  • en-us
  • es-es
  • fi-fi
  • fr-be
  • fr-ca
  • fr-fr
  • nb-no
  • nl-nl
  • pl-pl
  • sv

Open Graph

url
/en/
title
Rototilt Excavator Attachments for Sale | Rototilt
description
Explore the range of Rototilt® excavator attachments for sale. Rototilt® carries a range of high quality machine couplers, tiltrotators, and tools.

Technology

Server
Microsoft-IIS
Analytics
  • Google Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (10)
  • cdnjs.cloudflare.com×2
  • fonts.googleapis.com×2
  • ajax.googleapis.com×1
  • app.weply.chat×1
  • fonts.gstatic.com×1
  • maps.googleapis.com×1
  • px.ads.linkedin.com×1
  • snap.licdn.com×1
  • www.google-analytics.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Registrar
Name SRS AB
Created
1996-12-09
Expires
2026-12-08 203 days left
Updated
2025-11-09
Name servers
  • ns1.excedonet.net
  • ns2.excedonet.net

DNS records live

NS
  • ns1.excedonet.net
  • ns2.excedonet.net
MX
  • 10 inframg01.rototilt.com
TXT
Show 4 TXT records
  • google-site-verification=Pk_LiGNHcQP0XKIg92LrL2dm2JeTjbatUjDtj3n6DaM
  • _globalsign-domain-verification=lN8qM_iiO3y-9oCFU4YFdu3OFvLtIIow4Ssz6-M26I
  • google-site-verification=qbYMgjhvCKQy9yc-YLFGeM0CmEPjrBiEd0c8hYB8rmo
  • MS=ms11795307

Email authentication strong

SPF
v=spf1 ip4:195.250.61.150/32 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:g2bd1pfh@rua.excedo.services;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10w/I2Poc6cc37cvc+68ImuqEsFpdfgjmD1O5f2956hipr57xLI0I95ODB6SIpy12/s5UkB1bfcidx…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5KRuf2WA+/rzM+XAH5x2P2ZWh7GuHpqh5sSNDH5W7p/e7AVqDbokGiVV6d1/VRJWH34aB0DV0WXny8…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

GlobalSign GCC R3 DV TLS CA 2020
from 2025-11-17 to 2026-12-19
Expires in 214 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.rototilt.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
Header values
x-frame-options
SAMEORIGIN
permissions-policy
autoplay=(*), cross-origin-isolated=(*), display-capture=(*), document-domain=(*), encrypted-media=(*), fullscreen=(*), geolocation=(*), picture-in-picture=(*), xr-spatial-tracking=(*)
content-security-policy
default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://snap.licdn.com https://sc.lfeeder.com https://ajax.googleapis.com https://cdnjs.cloudflare.com https://www.gstatic.com https://maps.googleapis.com https://www.youtube.com https://app.weply.chat https://www.google.com https://consent.cookiebot.com https://consentcdn.cookiebot.com https://maxcdn.bootstrapcdn.com https://connect.facebook.net https://static.hotjar.com https://*.hotjar.com https://web-sdk-eu.aptrinsic.com https://googleads.g.doubleclick.net https://rototilt.com https://*.rototilt.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://maxcdn.bootstrapcdn.com;img-src 'self' data: https://www.google-analytics.com https://www.googletagmanager.com https://www.gstatic.com https://maps.gstatic.com https://snap.licdn.com https://www.youtube.com https://maps.googleapis.com https://www.google.com h
strict-transport-security
max-age=2592000
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (6)

Linked from (1)